Description
In the Eclipse OMR compiler component, since release 0.7.0, an optimization enabled for Eclipse OpenJ9 consumers of OMR on Z processors incorrectly handles NUL (0x00) characters during the Latin-compatible charset (UTF-8, ISO8859-1, ASCII, etc) to IBM-1047/037 translation sequence. This can cause the output byte array to be truncated, discarding the first NUL byte and all subsequent characters, and thereby exposing a possible buffer over-read problem. This issue is fixed in Eclipse OMR version 0.8.0.
INFO
Published Date :
2025-12-15T05:32:22.095Z
Last Modified :
2025-12-15T16:02:25.978Z
Source :
eclipse
AFFECTED PRODUCTS
The following products are affected by CVE-2025-14549 vulnerability.
| Vendors | Products |
|---|---|
| Eclipse |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2025-14549.
| URL | Resource |
|---|---|
| https://github.com/eclipse-omr/omr/pull/8073 |
|
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability